CVE-2005-0400
Summary
The ext2_make_empty function call in the Linux kernel before 2.6.11.6 does not properly initialize memory when creating a block for a new directory entry, which allows local users to obtain potentially sensitive information by reading the block.
- LOW
- LOCAL
- NONE
- NONE
- PARTIAL
- NONE
References
Advisory Timeline
- Published